Lucene search
K

25 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2004-2515

Malware in sbrugna...

5CVSS6.4AI score0.01723EPSS
Exploits1References7
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2004-1418

Malware in sbrugna...

7.5CVSS6.4AI score0.0423EPSS
Exploits3References10
EUVD
EUVD
added 2025/10/07 12:30 a.m.9 views

EUVD-2004-1417

Malware in sbrugna...

4.3CVSS6.4AI score0.04049EPSS
Exploits3References8
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2005-3684

Malware in sbrugna...

5CVSS6.4AI score0.01041EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/05/22 12:25 a.m.4 views

CVE-2005-3687

cancelaccount.php in WHM AutoPilot 2.5.30 and earlier allows remote attackers to cancel requests for arbitrary accounts via a modified c parameter...

5CVSS7.2AI score0.01041EPSS
Exploits0References1
NVD
NVD
added 2005/11/19 1:3 a.m.6 views

CVE-2005-3687

cancelaccount.php in WHM AutoPilot 2.5.30 and earlier allows remote attackers to cancel requests for arbitrary accounts via a modified c parameter...

5CVSS6.8AI score0.01041EPSS
Exploits0References2
CVE
CVE
added 2005/11/19 1:0 a.m.38 views

CVE-2005-3687

CVE-2005-3687 affects WHM AutoPilot 2.5.30 and earlier. A flaw in cancel_account.php lets remote attackers cancel requests for arbitrary accounts by modifying the c parameter. The NVD metrics indicate a NETWORK attack with LOW complexity, requiring no authentication, causing PARTIAL integrity imp...

5CVSS7.2AI score0.01041EPSS
Exploits0References2
Cvelist
Cvelist
added 2005/11/19 1:0 a.m.17 views

CVE-2005-3687

cancelaccount.php in WHM AutoPilot 2.5.30 and earlier allows remote attackers to cancel requests for arbitrary accounts via a modified c parameter...

6.8AI score0.01041EPSS
Exploits0References2
securityvulns
securityvulns
added 2005/11/17 12:0 a.m.59 views

[Full-disclosure] WMH AutoPilot: Unauthorized hosting account cancellation request

Title: WMH AutoPilot: Unauthorized hosting account cancellation request Access: Remote Product: WHM AutoPilot http://www.whmautopilot.com Severity: Moderately Low Synopsis: A vulnerability has been identified that allows the unauthorized filing of hosting account cancellation requests. Vulnerable...

0.5AI score
Exploits0
CVE
CVE
added 2005/10/25 4:0 a.m.41 views

CVE-2004-2524

CVE-2004-2524 affects Benchmark Designs’ WHM AutoPilot 2.4.5 and earlier. The vulnerability arises when clogin.php uses clogin_e and base64_encode to encode the target user ID in the c parameter, allowing remote attackers to read plaintext usernames and passwords from the resulting form. The desc...

5CVSS7.1AI score0.01723EPSS
Exploits1References6Affected Software1
Cvelist
Cvelist
added 2005/10/25 4:0 a.m.18 views

CVE-2004-2524

clogin.php in Benchmark Designs' WHM AutoPilot 2.4.5 and earlier allows remote attackers to obtain plaintext username and password credentials by using the clogine and base64encode functions to encode the desired user ID in the c parameter, then read the plaintext values in the resulting form...

6.7AI score0.01723EPSS
Exploits1References6
Cvelist
Cvelist
added 2005/02/12 5:0 a.m.22 views

CVE-2004-1420

Multiple cross-site scripting XSS vulnerabilities in header.php in WHM AutoPilot 2.4.6.5 and earlier allow remote attackers to inject arbitrary web script or HTML via the 1 sitetitle or 2 httpimages parameter...

5.8AI score0.04049EPSS
Exploits3References7
CVE
CVE
added 2005/02/12 5:0 a.m.54 views

CVE-2004-1421

CVE-2004-1421: Affects WHM AutoPilot 2.4.6.5 and earlier. The vulnerability arises from PHP remote file inclusion through the server_inc parameter in 1) step_one.php, 2) step_one_tables.php, and 3) step_two_tables.php, enabling an attacker to reference a URL on a remote server that contains execu...

7.5CVSS7.7AI score0.0423EPSS
Exploits3References9Affected Software1
CVE
CVE
added 2005/02/12 5:0 a.m.52 views

CVE-2004-1422

CVE-2004-1422 : WHM AutoPilot

5CVSS6.6AI score0.07888EPSS
Exploits3References7Affected Software1
Cvelist
Cvelist
added 2005/02/12 5:0 a.m.27 views

CVE-2004-1421

Multiple PHP remote file inclusion vulnerabilities 1 stepone.php, 2 steponetables.php, 3 steptwotables.php in WHM AutoPilot 2.4.6.5 and earlier allow remote attackers to execute arbitrary PHP code by modifying the serverinc parameter to reference a URL on a remote web server that contains the cod...

7.6AI score0.0423EPSS
Exploits3References9
Cvelist
Cvelist
added 2005/02/12 5:0 a.m.17 views

CVE-2004-1422

WHM AutoPilot 2.4.6.5 and earlier allows remote attackers to gain sensitive information via phpinfo, which reveals php settings...

6.5AI score0.07888EPSS
Exploits3References7
CVE
CVE
added 2005/02/12 5:0 a.m.49 views

CVE-2004-1420

WHM AutoPilot 2.4.6.5 and earlier contains multiple XSS flaws in header.php, allowing remote attackers to inject arbitrary script/HTML via site_title or http_images parameters. Affected component is WHM AutoPilot’s header.php; root cause is improper handling of user-supplied values in these param...

4.3CVSS5.8AI score0.04049EPSS
Exploits3References7Affected Software1
Packet Storm
Packet Storm
added 2005/01/02 12:0 a.m.118 views

WHM-autopilot.txt

GulfTech Security Research December 28th, 2004 Vendor : Benchmark Designs, LLC URL : http://www.whmautopilot.com/ Version : WHM AutoPilot v2.4.6.5 && Others All Versions Risk : Multiple Vulnerabilities Description: Started by a webhost looking for more out of a simple managment script, Brandee...

7.4AI score
Exploits0
NVD
NVD
added 2004/12/31 5:0 a.m.13 views

CVE-2004-2524

clogin.php in Benchmark Designs' WHM AutoPilot 2.4.5 and earlier allows remote attackers to obtain plaintext username and password credentials by using the clogine and base64encode functions to encode the desired user ID in the c parameter, then read the plaintext values in the resulting form...

5CVSS6.7AI score0.01723EPSS
Exploits1References6
NVD
NVD
added 2004/12/31 5:0 a.m.15 views

CVE-2004-1421

Multiple PHP remote file inclusion vulnerabilities 1 stepone.php, 2 steponetables.php, 3 steptwotables.php in WHM AutoPilot 2.4.6.5 and earlier allow remote attackers to execute arbitrary PHP code by modifying the serverinc parameter to reference a URL on a remote web server that contains the cod...

7.5CVSS7.7AI score0.0423EPSS
Exploits3References9
Rows per page
Query Builder